Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/431277a0-a282-4c41-965e-f51226adae47.roa
File: 431277a0-a282-4c41-965e-f51226adae47.roa (raw, json)
Hash identifier: tgY69IKfmtvx13nSoUbuy58A8zd9gkjH/AfWOWaX5e4=
Subject key identifier: EB:5A:4F:6F:78:B5:9F:29:A8:32:F2:68:B9:C1:E5:1C:CC:2C:F9:F1
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 161F144C79AABDFB7A95ECE74A42A3729C17C5BB
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/431277a0-a282-4c41-965e-f51226adae47.roa
Signing time: Wed 17 May 2023 00:00:00 +0000
ROA not before: Wed 17 May 2023 00:00:00 +0000
ROA not after: Sat 20 May 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
16:1f:14:4c:79:aa:bd:fb:7a:95:ec:e7:4a:42:a3:72:9c:17:c5:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: May 17 00:00:00 2023 GMT
Not After : May 20 23:59:59 2023 GMT
Subject: serialNumber=a9d0acf5812f7a26d4551ae6b8ccbd7c79f8c6a5d276345b60c70215a9614cf1, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:f3:8c:72:04:a6:54:98:b7:6c:15:3a:56:1f:
1c:7c:ec:d5:e0:0b:ca:0b:f9:0b:1d:13:ec:00:93:
e8:db:29:47:6a:37:cd:fd:95:d4:7b:30:2d:0c:85:
3b:92:5b:37:08:bd:60:a7:cf:3c:ef:ed:05:e8:50:
82:da:a1:13:c4:8a:4b:02:14:fd:af:58:ea:3b:cf:
55:b4:cf:07:8b:c2:55:d7:54:e0:a1:45:a7:2b:38:
6b:d6:22:2b:fa:b8:80:47:a5:90:ef:99:ac:3e:bb:
9f:50:3a:65:ee:31:c5:bd:88:5c:38:7f:cb:b2:68:
c3:73:86:a2:15:63:d3:9f:11:ad:51:d0:b1:d9:f7:
a2:54:5d:59:37:a0:cd:da:c4:97:01:d4:4c:33:c4:
01:5e:1b:56:63:1e:c5:60:19:fa:1b:39:19:61:a6:
d5:2a:2d:2c:81:e0:6a:10:4a:b7:2b:b6:ae:0c:bb:
97:d1:a0:3d:4a:64:c1:6e:15:d3:28:53:34:8e:84:
97:7f:92:16:76:8b:53:d9:61:7e:d8:d0:41:50:64:
db:15:a6:08:ad:d2:ec:79:b1:6e:a0:4f:74:fd:21:
a2:a5:db:97:80:48:49:85:95:90:81:cf:e7:02:11:
37:a6:38:7f:26:ec:a0:9a:3d:35:24:48:9e:72:01:
c8:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:5A:4F:6F:78:B5:9F:29:A8:32:F2:68:B9:C1:E5:1C:CC:2C:F9:F1
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/431277a0-a282-4c41-965e-f51226adae47.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
c6:c3:a1:ff:42:28:a5:3b:29:23:57:8a:6b:62:ee:a8:5c:ca:
e5:5a:cb:c1:12:37:1e:1d:3d:a8:4b:92:f3:46:37:e6:ad:bf:
75:ff:40:29:43:dd:be:c7:27:5e:47:d9:98:5e:da:84:1d:f2:
8e:06:ec:f2:d8:02:53:4c:8d:65:86:12:c4:d2:44:ca:93:d5:
70:3a:c3:cf:ca:bf:82:97:8f:63:f9:64:7d:0c:b6:1e:33:88:
ec:a5:82:45:c3:5b:61:14:77:18:e0:8b:5e:c0:1c:73:30:40:
95:9e:83:be:d0:86:62:3a:b0:e5:00:e5:5c:db:d6:03:49:a0:
f4:94:43:97:21:88:88:03:8a:69:66:ce:d4:91:47:29:46:e7:
a5:a6:d5:55:e7:19:18:82:f8:3b:b2:35:9f:73:fa:01:71:38:
78:4c:ee:c0:a8:03:09:51:71:11:23:1e:fa:07:f5:1c:12:e9:
6b:34:38:4f:06:e2:d4:18:12:46:09:75:a2:c1:f0:e3:07:d8:
4f:42:64:0e:e7:9e:3e:f8:65:ea:0b:a8:53:1d:14:c4:a0:06:
da:a4:d7:16:23:f2:7c:14:a1:41:ca:41:70:f4:85:5a:ad:0b:
17:1b:ae:9c:94:27:37:03:42:41:35:54:72:2a:34:64:36:48:
44:79:fe:44
-----BEGIN CERTIFICATE-----
MIIGMTCCBRmgAwIBAgIUFh8UTHmqvft6leznSkKjcpwXxbswDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyMjc4YWFiODc4ZjI4MzFiYjE4MjNiNTg3OTRiMDkyZDg2
ZmIxZDdhMGY3NGUyODE2MTEwHhcNMjMwNTE3MDAwMDAwWhcNMjMwNTIwMjM1OTU5
WjCBpTFJMEcGA1UEBRNAYTlkMGFjZjU4MTJmN2EyNmQ0NTUxYWU2YjhjY2JkN2M3
OWY4YzZhNWQyNzYzNDViNjBjNzAyMTVhOTYxNGNmMTEtMCsGA1UEAxMkNmFlNGU1
NjctNjM0OC00YzRmLTk4YTgtMDQyMmM0YzUyZmYzMRQwEgYDVQQLEwtBbWF6b24g
UlBLSTETMBEGA1UEChMKQW1hem9uLmNvbTCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBAMHzjHIEplSYt2wVOlYfHHzs1eALygv5Cx0T7ACT6NspR2o3zf2V
1HswLQyFO5JbNwi9YKfPPO/tBehQgtqhE8SKSwIU/a9Y6jvPVbTPB4vCVddU4KFF
pys4a9YiK/q4gEelkO+ZrD67n1A6Ze4xxb2IXDh/y7Jow3OGohVj058RrVHQsdn3
olRdWTegzdrElwHUTDPEAV4bVmMexWAZ+hs5GWGm1SotLIHgahBKtyu2rgy7l9Gg
PUpkwW4V0yhTNI6El3+SFnaLU9lhftjQQVBk2xWmCK3S7HmxbqBPdP0hoqXbl4BI
SYWVkIHP5wIRN6Y4fybsoJo9NSRInnIByOMCAwEAAaOCAr4wggK6MB0GA1UdDgQW
BBTrWk9veLWfKagy8mi5weUczCz58TAfBgNVHSMEGDAWgBSRRO3HpA7pkLf6Nm/2
4X15rcSDlzAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHgBggr
BgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2FyaW4t
cnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMvMDM1
NzI3MmMtYTc5YS00NWJmLTk1ODYtOTJkZDQ5ZWYzMjIzLzczZjIxYzJiLTg4MjMt
NGMyNC1iMjViLTQzYzgwY2I2ZDFiYi8yNzhhYWI4NzhmMjgzMWJiMTgyM2I1ODc5
NGIwOTJkODZmYjFkN2EwZjc0ZTI4MTYxMS5jZXIwgZ4GCCsGAQUFBwELBIGRMIGO
MIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6
b25hd3MuY29tL3ZvbHVtZS9iNjhhMzJlZS00NTVkLTQ4M2EtOTQzZC0xYTViZTc0
OGJmZWEvNDMxMjc3YTAtYTI4Mi00YzQxLTk2NWUtZjUxMjI2YWRhZTQ3LnJvYTCB
lQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I2OGEzMmVlLTQ1NWQtNDgzYS05NDNk
LTFhNWJlNzQ4YmZlYS80YmI4YWU1Yy0xMjRjLTQyZjMtODdmYi00ZjM0ZTc0ZTNk
YTIuY3JsMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBADHJHgwDQYJKoZIhvcNAQELBQADggEBAMbDof9CKKU7KSNX
imti7qhcyuVay8ESNx4dPahLkvNGN+atv3X/QClD3b7HJ15H2Zhe2oQd8o4G7PLY
AlNMjWWGEsTSRMqT1XA6w8/Kv4KXj2P5ZH0Mth4ziOylgkXDW2EUdxjgi17AHHMw
QJWeg77QhmI6sOUA5Vzb1gNJoPSUQ5chiIgDimlmztSRRylG56Wm1VXnGRiC+Duy
NZ9z+gFxOHhM7sCoAwlRcREjHvoH9RwS6Ws0OE8G4tQYEkYJdaLB8OMH2E9CZA7n
nj74ZeoLqFMdFMSgBtqk1xYj8nwUoUHKQXD0hVqtCxcbrpyUJzcDQkE1VHIqNGQ2
SER5/kQ=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:41 2023 by rpki-client on console-ams.rpki-client.org